Hello All,
I am not very familiar with the Junos style of ACL's so I apologize.
I would like to find out how to permit only certain SNMP traffic inbound. For example, I am receiving a large amount of SNMP Authentication Failures in Solar Winds Orion. When I run traceoptions, I see that I have incoming SNMP read and read writes for unknown community and unknown IP address. I would like to only permit traffic to my server and block all other traffic.
Per JTAC, I was told this can be done in the SNMP hierarchy by doing the following:
user@host# set snmp community TEST clients 172.22.0.0/16
user@host# set snmp community TEST clients 0.0.0.0/0 restrict
This would permit only 172.22 /16 clients but block everything else... however this is not the case. I am still receiving Auth Failure alerts. Could someone assist in properly filtering this traffic?
Thanks in advance.